Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231332e32362e302f32342d3234203d3e203633343733.roa
File: 3138352e3231332e32362e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: ELMym7+t/pT7WrAufjhER5E1DJVsDT+fluDp/bRNx1I=
Subject key identifier: FD:97:90:E0:32:01:64:7E:84:91:E0:49:6A:38:05:49:96:60:66:80
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 14D849045144EE2C86FD35961FAE2C0E72F70FB0
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231332e32362e302f32342d3234203d3e203633343733.roa
Signing time: Tue 09 Jan 2024 09:08:22 +0000
ROA not before: Tue 09 Jan 2024 09:03:22 +0000
ROA not after: Tue 07 Jan 2025 09:08:22 +0000
asID: 63473
IP address blocks: 185.213.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 29 Jun 2024 08:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:d8:49:04:51:44:ee:2c:86:fd:35:96:1f:ae:2c:0e:72:f7:0f:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Jan 9 09:03:22 2024 GMT
Not After : Jan 7 09:08:22 2025 GMT
Subject: CN=FD9790E03201647E8491E0496A38054996606680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:75:1c:b3:13:0f:60:2f:de:cb:86:d1:a6:04:
6a:04:75:b8:26:41:17:4b:f1:bc:85:1a:50:1f:91:
45:25:89:76:4a:70:2a:36:8a:62:cd:a6:ca:a4:5a:
ac:7c:68:40:56:bb:3c:4a:3c:e6:e1:87:3e:27:1e:
5f:c4:dd:c8:5b:22:a1:95:e6:2c:88:e6:fe:85:ce:
fc:5a:1f:a3:29:87:5b:1c:20:d6:24:52:18:22:03:
fa:b9:81:88:3d:18:2f:04:03:dd:cc:8f:13:7a:56:
7a:16:27:2d:51:4a:ff:b3:ca:e0:f3:ce:ea:bf:11:
51:10:6f:7d:53:87:de:3f:df:9e:94:cf:be:33:60:
78:b8:73:f7:e5:fa:b2:07:a9:53:f8:a8:9d:ca:bb:
fa:ee:b5:1d:f3:ca:3c:f1:a2:c0:34:1e:03:1d:ee:
ad:51:67:19:51:3d:1d:aa:93:ce:48:2e:9a:bc:2c:
4a:17:cd:20:4b:70:13:a6:fb:56:a5:c1:d4:34:28:
06:49:ae:5e:2d:fb:c3:72:13:5b:62:22:e7:a0:20:
36:c6:04:c4:59:3f:8a:a8:4f:ee:c9:2d:2a:c9:62:
78:89:cd:ec:8a:4a:85:a6:b7:c2:bd:a4:cc:96:b9:
36:fe:11:af:a8:16:6d:15:b1:d9:22:2d:4e:93:90:
30:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:97:90:E0:32:01:64:7E:84:91:E0:49:6A:38:05:49:96:60:66:80
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231332e32362e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.26.0/24
Signature Algorithm: sha256WithRSAEncryption
72:ba:89:96:73:09:a0:14:6c:83:d2:d3:c2:60:da:f4:b8:46:
0c:0d:8f:34:e4:9b:da:1e:fe:fe:e8:14:7f:a5:46:7a:a9:d3:
20:13:58:70:b4:47:a2:09:cc:31:a9:4e:b8:bc:ae:58:c9:ee:
41:fa:40:53:78:a3:e1:9c:18:61:e7:96:8c:81:02:54:6c:0b:
42:02:02:7a:01:84:49:cf:c8:f0:a6:15:94:74:e0:dd:b5:99:
66:29:ba:31:f4:f0:d4:12:dc:e3:2c:a0:9c:eb:98:07:54:70:
7c:cd:91:14:c1:f2:4c:ce:89:0a:d9:88:05:89:82:1d:bb:90:
ab:fb:e4:c3:d4:49:c9:59:1f:b8:92:9d:12:f6:91:92:73:2b:
48:e2:e3:cc:53:22:07:a5:63:5e:43:a1:b6:b0:d5:ed:69:6f:
01:ac:2e:38:2b:06:c6:87:f8:ec:00:d4:b2:ad:b7:4a:32:b7:
c6:66:e8:cb:d2:5e:c9:2d:5a:d9:64:4b:ff:1a:ea:fb:64:85:
96:0e:f8:49:30:3e:f8:cb:66:a8:e2:01:42:2d:8f:b6:43:41:
a4:47:ef:1e:eb:c8:9f:28:0f:ae:41:e1:ba:c4:8a:69:b0:a2:
3b:d3:a2:12:00:68:59:11:c2:92:af:69:ee:e9:f0:a3:6f:e4:
6c:ba:7a:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 12:08:28 2024 by rpki-client on console-ams.rpki-client.org